OpenClaw Quickstart
WarnAudited by ClawScan on May 10, 2026.
Overview
This onboarding skill is mostly coherent, but it silently installs persistent heartbeat and daily reminder jobs that run commands and change OpenClaw state without asking first.
Install only if you are comfortable with the skill creating OpenClaw reminder/heartbeat behavior. Before first use, ask it to run the installer in dry-run mode, confirm the cron schedule and HEARTBEAT.md changes, and make sure you know how to remove the quickstart crons and inserted heartbeat block.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can start ongoing heartbeat checks and daily reminders as soon as it is invoked, instead of waiting for the user to approve persistent automation.
The skill directs the agent to install background onboarding behavior on first activation without user confirmation.
If the result is `fresh` ... **silently run the installer first** ... Do not ask the user — just run it.
Make first-run installation opt-in, clearly explain what will be created, and provide an obvious disable command before creating any cron or heartbeat behavior.
A command-running installer can modify the user's OpenClaw environment and schedule future agent activity without an explicit installation prompt.
The installer executes the OpenClaw CLI to create a cron job; this is purpose-aligned but becomes concerning because SKILL.md tells the agent to run the installer silently.
const addResult = openclaw(
'cron', 'add',
'--name', 'quickstart-reminder',Require user approval before running install.js, and show the exact OpenClaw cron command and schedule that will be created.
Persistent instructions are added to the user's workspace and may influence future agent behavior across sessions until cleanup succeeds.
The installer appends a Quickstart block to HEARTBEAT.md that instructs future heartbeat runs to execute progress checks, mark completions, and send messages.
fs.writeFileSync(heartbeatFile, newContent, 'utf8');
Ask before modifying HEARTBEAT.md, clearly mark the inserted block, include a manual removal command, and avoid silent persistent context changes.
The skill manages OpenClaw cron jobs on the user's behalf, which affects scheduled agent behavior.
The cleanup script removes only crons named quickstart-reminder or quickstart-heartbeat, which is scoped and purpose-aligned, but it still mutates the user's cron configuration.
const res = openclaw('cron', 'rm', job.id, '--json');Show users which cron jobs exist and which ones will be removed or created before changing them.
A new user may install additional skills that have their own permissions, code, or security risks.
One onboarding task teaches users to install additional community skills from ClawHub; the reference suggests user choice, but third-party skills can expand the agent's capabilities.
安装你选择的 Skill:`clawhub install <skill-name>`
Review any recommended skill's permissions, source, and scan results before installing it.